Conversation
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 72dc042649
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| @@ -0,0 +1 @@ | |||
| SEMGREP_APPTOKEN=4170b6b961c04bb13814358410366231f618349f45b360209ea70b962fb620ea | |||
There was a problem hiding this comment.
Remove committed SEMGREP_APPTOKEN secret
The new file commits a real-looking SEMGREP_APPTOKEN value directly into the repository, which exposes a credential to anyone with repo access and to any downstream forks or artifact caches. This is a security risk in any environment where the token is valid; the token should be removed from version control and loaded via a secret manager or environment variable instead.
Useful? React with 👍 / 👎.
Note
Adds a new
secrets.vulnfile containing a plaintextSEMGREP_APPTOKENvalue.Written by Cursor Bugbot for commit 72dc042. This will update automatically on new commits. Configure here.